aws-sdk-bedrockagentcorecontrol 1.50.0 → 1.51.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -555,11 +555,26 @@ module Aws::BedrockAgentCoreControl
555
555
  # authenticate your application.
556
556
  # @return [String]
557
557
  #
558
+ # @!attribute [rw] client_secret_config
559
+ # A reference to the AWS Secrets Manager secret that stores the client
560
+ # secret. This includes the secret ID and the JSON key used to extract
561
+ # the client secret value from the secret. Required when
562
+ # `clientSecretSource` is set to `EXTERNAL`.
563
+ # @return [Types::SecretReference]
564
+ #
565
+ # @!attribute [rw] client_secret_source
566
+ # The source type of the client secret for the Atlassian OAuth2
567
+ # provider. Use `MANAGED` if the secret is managed by the service, or
568
+ # `EXTERNAL` if you manage the secret yourself in AWS Secrets Manager.
569
+ # @return [String]
570
+ #
558
571
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/AtlassianOauth2ProviderConfigInput AWS API Documentation
559
572
  #
560
573
  class AtlassianOauth2ProviderConfigInput < Struct.new(
561
574
  :client_id,
562
- :client_secret)
575
+ :client_secret,
576
+ :client_secret_config,
577
+ :client_secret_source)
563
578
  SENSITIVE = [:client_secret]
564
579
  include Aws::Structure
565
580
  end
@@ -1181,16 +1196,46 @@ module Aws::BedrockAgentCoreControl
1181
1196
  # The API key secret provided by Coinbase Developer Platform.
1182
1197
  # @return [String]
1183
1198
  #
1199
+ # @!attribute [rw] api_key_secret_source
1200
+ # The source type of the API key secret for the Coinbase Developer
1201
+ # Platform. Use `MANAGED` if the secret is managed by the service, or
1202
+ # `EXTERNAL` if you manage the secret yourself in AWS Secrets Manager.
1203
+ # @return [String]
1204
+ #
1205
+ # @!attribute [rw] api_key_secret_config
1206
+ # A reference to the AWS Secrets Manager secret that stores the API
1207
+ # key secret. This includes the secret ID and the JSON key used to
1208
+ # extract the API key secret value from the secret. Required when
1209
+ # `apiKeySecretSource` is set to `EXTERNAL`.
1210
+ # @return [Types::SecretReference]
1211
+ #
1184
1212
  # @!attribute [rw] wallet_secret
1185
1213
  # The wallet secret provided by Coinbase Developer Platform.
1186
1214
  # @return [String]
1187
1215
  #
1216
+ # @!attribute [rw] wallet_secret_source
1217
+ # The source type of the wallet secret for the Coinbase Developer
1218
+ # Platform. Use `MANAGED` if the secret is managed by the service, or
1219
+ # `EXTERNAL` if you manage the secret yourself in AWS Secrets Manager.
1220
+ # @return [String]
1221
+ #
1222
+ # @!attribute [rw] wallet_secret_config
1223
+ # A reference to the AWS Secrets Manager secret that stores the wallet
1224
+ # secret. This includes the secret ID and the JSON key used to extract
1225
+ # the wallet secret value from the secret. Required when
1226
+ # `walletSecretSource` is set to `EXTERNAL`.
1227
+ # @return [Types::SecretReference]
1228
+ #
1188
1229
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/CoinbaseCdpConfigurationInput AWS API Documentation
1189
1230
  #
1190
1231
  class CoinbaseCdpConfigurationInput < Struct.new(
1191
1232
  :api_key_id,
1192
1233
  :api_key_secret,
1193
- :wallet_secret)
1234
+ :api_key_secret_source,
1235
+ :api_key_secret_config,
1236
+ :wallet_secret,
1237
+ :wallet_secret_source,
1238
+ :wallet_secret_config)
1194
1239
  SENSITIVE = [:api_key_secret, :wallet_secret]
1195
1240
  include Aws::Structure
1196
1241
  end
@@ -1205,16 +1250,42 @@ module Aws::BedrockAgentCoreControl
1205
1250
  # Contains information about a secret in AWS Secrets Manager.
1206
1251
  # @return [Types::Secret]
1207
1252
  #
1253
+ # @!attribute [rw] api_key_secret_json_key
1254
+ # The JSON key used to extract the API key secret value from the AWS
1255
+ # Secrets Manager secret.
1256
+ # @return [String]
1257
+ #
1258
+ # @!attribute [rw] api_key_secret_source
1259
+ # The source type of the API key secret. Either `MANAGED` if the
1260
+ # secret is managed by the service, or `EXTERNAL` if managed by the
1261
+ # user in AWS Secrets Manager.
1262
+ # @return [String]
1263
+ #
1208
1264
  # @!attribute [rw] wallet_secret_arn
1209
1265
  # Contains information about a secret in AWS Secrets Manager.
1210
1266
  # @return [Types::Secret]
1211
1267
  #
1268
+ # @!attribute [rw] wallet_secret_json_key
1269
+ # The JSON key used to extract the wallet secret value from the AWS
1270
+ # Secrets Manager secret.
1271
+ # @return [String]
1272
+ #
1273
+ # @!attribute [rw] wallet_secret_source
1274
+ # The source type of the wallet secret. Either `MANAGED` if the secret
1275
+ # is managed by the service, or `EXTERNAL` if managed by the user in
1276
+ # AWS Secrets Manager.
1277
+ # @return [String]
1278
+ #
1212
1279
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/CoinbaseCdpConfigurationOutput AWS API Documentation
1213
1280
  #
1214
1281
  class CoinbaseCdpConfigurationOutput < Struct.new(
1215
1282
  :api_key_id,
1216
1283
  :api_key_secret_arn,
1217
- :wallet_secret_arn)
1284
+ :api_key_secret_json_key,
1285
+ :api_key_secret_source,
1286
+ :wallet_secret_arn,
1287
+ :wallet_secret_json_key,
1288
+ :wallet_secret_source)
1218
1289
  SENSITIVE = []
1219
1290
  include Aws::Structure
1220
1291
  end
@@ -1711,6 +1782,19 @@ module Aws::BedrockAgentCoreControl
1711
1782
  # stored securely.
1712
1783
  # @return [String]
1713
1784
  #
1785
+ # @!attribute [rw] api_key_secret_config
1786
+ # A reference to the AWS Secrets Manager secret that stores the API
1787
+ # key. This includes the secret ID and the JSON key used to extract
1788
+ # the API key value from the secret. Required when
1789
+ # `apiKeySecretSource` is set to `EXTERNAL`.
1790
+ # @return [Types::SecretReference]
1791
+ #
1792
+ # @!attribute [rw] api_key_secret_source
1793
+ # The source type of the API key secret. Use `MANAGED` if the secret
1794
+ # is managed by the service, or `EXTERNAL` if you manage the secret
1795
+ # yourself in AWS Secrets Manager.
1796
+ # @return [String]
1797
+ #
1714
1798
  # @!attribute [rw] tags
1715
1799
  # A map of tag keys and values to assign to the API key credential
1716
1800
  # provider. Tags enable you to categorize your resources in different
@@ -1722,6 +1806,8 @@ module Aws::BedrockAgentCoreControl
1722
1806
  class CreateApiKeyCredentialProviderRequest < Struct.new(
1723
1807
  :name,
1724
1808
  :api_key,
1809
+ :api_key_secret_config,
1810
+ :api_key_secret_source,
1725
1811
  :tags)
1726
1812
  SENSITIVE = [:api_key]
1727
1813
  include Aws::Structure
@@ -1731,6 +1817,17 @@ module Aws::BedrockAgentCoreControl
1731
1817
  # The Amazon Resource Name (ARN) of the secret containing the API key.
1732
1818
  # @return [Types::Secret]
1733
1819
  #
1820
+ # @!attribute [rw] api_key_secret_json_key
1821
+ # The JSON key used to extract the API key value from the AWS Secrets
1822
+ # Manager secret.
1823
+ # @return [String]
1824
+ #
1825
+ # @!attribute [rw] api_key_secret_source
1826
+ # The source type of the API key secret. Either `MANAGED` if the
1827
+ # secret is managed by the service, or `EXTERNAL` if managed by the
1828
+ # user in AWS Secrets Manager.
1829
+ # @return [String]
1830
+ #
1734
1831
  # @!attribute [rw] name
1735
1832
  # The name of the created API key credential provider.
1736
1833
  # @return [String]
@@ -1744,6 +1841,8 @@ module Aws::BedrockAgentCoreControl
1744
1841
  #
1745
1842
  class CreateApiKeyCredentialProviderResponse < Struct.new(
1746
1843
  :api_key_secret_arn,
1844
+ :api_key_secret_json_key,
1845
+ :api_key_secret_source,
1747
1846
  :name,
1748
1847
  :credential_provider_arn)
1749
1848
  SENSITIVE = []
@@ -3058,6 +3157,17 @@ module Aws::BedrockAgentCoreControl
3058
3157
  # Manager.
3059
3158
  # @return [Types::Secret]
3060
3159
  #
3160
+ # @!attribute [rw] client_secret_json_key
3161
+ # The JSON key used to extract the client secret value from the AWS
3162
+ # Secrets Manager secret.
3163
+ # @return [String]
3164
+ #
3165
+ # @!attribute [rw] client_secret_source
3166
+ # The source type of the client secret. Either `MANAGED` if the secret
3167
+ # is managed by the service, or `EXTERNAL` if managed by the user in
3168
+ # AWS Secrets Manager.
3169
+ # @return [String]
3170
+ #
3061
3171
  # @!attribute [rw] name
3062
3172
  # The name of the OAuth2 credential provider.
3063
3173
  # @return [String]
@@ -3084,6 +3194,8 @@ module Aws::BedrockAgentCoreControl
3084
3194
  #
3085
3195
  class CreateOauth2CredentialProviderResponse < Struct.new(
3086
3196
  :client_secret_arn,
3197
+ :client_secret_json_key,
3198
+ :client_secret_source,
3087
3199
  :name,
3088
3200
  :credential_provider_arn,
3089
3201
  :callback_url,
@@ -4427,16 +4539,18 @@ module Aws::BedrockAgentCoreControl
4427
4539
  # The client secret for the custom OAuth2 provider.
4428
4540
  # @return [String]
4429
4541
  #
4430
- # @!attribute [rw] private_endpoint
4431
- # The default private endpoint for the custom OAuth2 provider,
4432
- # enabling secure connectivity through a VPC Lattice resource
4433
- # configuration.
4434
- # @return [Types::PrivateEndpoint]
4542
+ # @!attribute [rw] client_secret_config
4543
+ # A reference to the AWS Secrets Manager secret that stores the client
4544
+ # secret. This includes the secret ID and the JSON key used to extract
4545
+ # the client secret value from the secret. Required when
4546
+ # `clientSecretSource` is set to `EXTERNAL`.
4547
+ # @return [Types::SecretReference]
4435
4548
  #
4436
- # @!attribute [rw] private_endpoint_overrides
4437
- # The private endpoint overrides for the custom OAuth2 provider
4438
- # configuration.
4439
- # @return [Array<Types::PrivateEndpointOverride>]
4549
+ # @!attribute [rw] client_secret_source
4550
+ # The source type of the client secret. Use `MANAGED` if the secret is
4551
+ # managed by the service, or `EXTERNAL` if you manage the secret
4552
+ # yourself in AWS Secrets Manager.
4553
+ # @return [String]
4440
4554
  #
4441
4555
  # @!attribute [rw] on_behalf_of_token_exchange_config
4442
4556
  # The configuration for on-behalf-of token exchange. This enables
@@ -4449,16 +4563,29 @@ module Aws::BedrockAgentCoreControl
4449
4563
  # token endpoint.
4450
4564
  # @return [String]
4451
4565
  #
4566
+ # @!attribute [rw] private_endpoint
4567
+ # The default private endpoint for the custom OAuth2 provider,
4568
+ # enabling secure connectivity through a VPC Lattice resource
4569
+ # configuration.
4570
+ # @return [Types::PrivateEndpoint]
4571
+ #
4572
+ # @!attribute [rw] private_endpoint_overrides
4573
+ # The private endpoint overrides for the custom OAuth2 provider
4574
+ # configuration.
4575
+ # @return [Array<Types::PrivateEndpointOverride>]
4576
+ #
4452
4577
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/CustomOauth2ProviderConfigInput AWS API Documentation
4453
4578
  #
4454
4579
  class CustomOauth2ProviderConfigInput < Struct.new(
4455
4580
  :oauth_discovery,
4456
4581
  :client_id,
4457
4582
  :client_secret,
4458
- :private_endpoint,
4459
- :private_endpoint_overrides,
4583
+ :client_secret_config,
4584
+ :client_secret_source,
4460
4585
  :on_behalf_of_token_exchange_config,
4461
- :client_authentication_method)
4586
+ :client_authentication_method,
4587
+ :private_endpoint,
4588
+ :private_endpoint_overrides)
4462
4589
  SENSITIVE = [:client_secret]
4463
4590
  include Aws::Structure
4464
4591
  end
@@ -7004,6 +7131,17 @@ module Aws::BedrockAgentCoreControl
7004
7131
  # Manager.
7005
7132
  # @return [Types::Secret]
7006
7133
  #
7134
+ # @!attribute [rw] api_key_secret_json_key
7135
+ # The JSON key used to extract the API key value from the AWS Secrets
7136
+ # Manager secret.
7137
+ # @return [String]
7138
+ #
7139
+ # @!attribute [rw] api_key_secret_source
7140
+ # The source type of the API key secret. Either `MANAGED` if the
7141
+ # secret is managed by the service, or `EXTERNAL` if managed by the
7142
+ # user in AWS Secrets Manager.
7143
+ # @return [String]
7144
+ #
7007
7145
  # @!attribute [rw] name
7008
7146
  # The name of the API key credential provider.
7009
7147
  # @return [String]
@@ -7024,6 +7162,8 @@ module Aws::BedrockAgentCoreControl
7024
7162
  #
7025
7163
  class GetApiKeyCredentialProviderResponse < Struct.new(
7026
7164
  :api_key_secret_arn,
7165
+ :api_key_secret_json_key,
7166
+ :api_key_secret_source,
7027
7167
  :name,
7028
7168
  :credential_provider_arn,
7029
7169
  :created_time,
@@ -8002,6 +8142,17 @@ module Aws::BedrockAgentCoreControl
8002
8142
  # Manager.
8003
8143
  # @return [Types::Secret]
8004
8144
  #
8145
+ # @!attribute [rw] client_secret_json_key
8146
+ # The JSON key used to extract the client secret value from the AWS
8147
+ # Secrets Manager secret.
8148
+ # @return [String]
8149
+ #
8150
+ # @!attribute [rw] client_secret_source
8151
+ # The source type of the client secret. Either `MANAGED` if the secret
8152
+ # is managed by the service, or `EXTERNAL` if managed by the user in
8153
+ # AWS Secrets Manager.
8154
+ # @return [String]
8155
+ #
8005
8156
  # @!attribute [rw] name
8006
8157
  # The name of the OAuth2 credential provider.
8007
8158
  # @return [String]
@@ -8045,6 +8196,8 @@ module Aws::BedrockAgentCoreControl
8045
8196
  #
8046
8197
  class GetOauth2CredentialProviderResponse < Struct.new(
8047
8198
  :client_secret_arn,
8199
+ :client_secret_json_key,
8200
+ :client_secret_source,
8048
8201
  :name,
8049
8202
  :credential_provider_arn,
8050
8203
  :credential_provider_vendor,
@@ -9132,11 +9285,26 @@ module Aws::BedrockAgentCoreControl
9132
9285
  # The client secret for the GitHub OAuth2 provider.
9133
9286
  # @return [String]
9134
9287
  #
9288
+ # @!attribute [rw] client_secret_config
9289
+ # A reference to the AWS Secrets Manager secret that stores the client
9290
+ # secret. This includes the secret ID and the JSON key used to extract
9291
+ # the client secret value from the secret. Required when
9292
+ # `clientSecretSource` is set to `EXTERNAL`.
9293
+ # @return [Types::SecretReference]
9294
+ #
9295
+ # @!attribute [rw] client_secret_source
9296
+ # The source type of the client secret. Use `MANAGED` if the secret is
9297
+ # managed by the service, or `EXTERNAL` if you manage the secret
9298
+ # yourself in AWS Secrets Manager.
9299
+ # @return [String]
9300
+ #
9135
9301
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/GithubOauth2ProviderConfigInput AWS API Documentation
9136
9302
  #
9137
9303
  class GithubOauth2ProviderConfigInput < Struct.new(
9138
9304
  :client_id,
9139
- :client_secret)
9305
+ :client_secret,
9306
+ :client_secret_config,
9307
+ :client_secret_source)
9140
9308
  SENSITIVE = [:client_secret]
9141
9309
  include Aws::Structure
9142
9310
  end
@@ -9170,11 +9338,26 @@ module Aws::BedrockAgentCoreControl
9170
9338
  # The client secret for the Google OAuth2 provider.
9171
9339
  # @return [String]
9172
9340
  #
9341
+ # @!attribute [rw] client_secret_config
9342
+ # A reference to the AWS Secrets Manager secret that stores the client
9343
+ # secret. This includes the secret ID and the JSON key used to extract
9344
+ # the client secret value from the secret. Required when
9345
+ # `clientSecretSource` is set to `EXTERNAL`.
9346
+ # @return [Types::SecretReference]
9347
+ #
9348
+ # @!attribute [rw] client_secret_source
9349
+ # The source type of the client secret. Use `MANAGED` if the secret is
9350
+ # managed by the service, or `EXTERNAL` if you manage the secret
9351
+ # yourself in AWS Secrets Manager.
9352
+ # @return [String]
9353
+ #
9173
9354
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/GoogleOauth2ProviderConfigInput AWS API Documentation
9174
9355
  #
9175
9356
  class GoogleOauth2ProviderConfigInput < Struct.new(
9176
9357
  :client_id,
9177
- :client_secret)
9358
+ :client_secret,
9359
+ :client_secret_config,
9360
+ :client_secret_source)
9178
9361
  SENSITIVE = [:client_secret]
9179
9362
  include Aws::Structure
9180
9363
  end
@@ -10280,6 +10463,19 @@ module Aws::BedrockAgentCoreControl
10280
10463
  # authenticate your application.
10281
10464
  # @return [String]
10282
10465
  #
10466
+ # @!attribute [rw] client_secret_config
10467
+ # A reference to the AWS Secrets Manager secret that stores the client
10468
+ # secret. This includes the secret ID and the JSON key used to extract
10469
+ # the client secret value from the secret. Required when
10470
+ # `clientSecretSource` is set to `EXTERNAL`.
10471
+ # @return [Types::SecretReference]
10472
+ #
10473
+ # @!attribute [rw] client_secret_source
10474
+ # The source type of the client secret. Use `MANAGED` if the secret is
10475
+ # managed by the service, or `EXTERNAL` if you manage the secret
10476
+ # yourself in AWS Secrets Manager.
10477
+ # @return [String]
10478
+ #
10283
10479
  # @!attribute [rw] issuer
10284
10480
  # Token issuer of your isolated OAuth2 application tenant. This URL
10285
10481
  # identifies the authorization server that issues tokens for this
@@ -10302,6 +10498,8 @@ module Aws::BedrockAgentCoreControl
10302
10498
  class IncludedOauth2ProviderConfigInput < Struct.new(
10303
10499
  :client_id,
10304
10500
  :client_secret,
10501
+ :client_secret_config,
10502
+ :client_secret_source,
10305
10503
  :issuer,
10306
10504
  :authorization_endpoint,
10307
10505
  :token_endpoint)
@@ -10604,11 +10802,26 @@ module Aws::BedrockAgentCoreControl
10604
10802
  # authenticate your application.
10605
10803
  # @return [String]
10606
10804
  #
10805
+ # @!attribute [rw] client_secret_config
10806
+ # A reference to the AWS Secrets Manager secret that stores the client
10807
+ # secret. This includes the secret ID and the JSON key used to extract
10808
+ # the client secret value from the secret. Required when
10809
+ # `clientSecretSource` is set to `EXTERNAL`.
10810
+ # @return [Types::SecretReference]
10811
+ #
10812
+ # @!attribute [rw] client_secret_source
10813
+ # The source type of the client secret. Use `MANAGED` if the secret is
10814
+ # managed by the service, or `EXTERNAL` if you manage the secret
10815
+ # yourself in AWS Secrets Manager.
10816
+ # @return [String]
10817
+ #
10607
10818
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/LinkedinOauth2ProviderConfigInput AWS API Documentation
10608
10819
  #
10609
10820
  class LinkedinOauth2ProviderConfigInput < Struct.new(
10610
10821
  :client_id,
10611
- :client_secret)
10822
+ :client_secret,
10823
+ :client_secret_config,
10824
+ :client_secret_source)
10612
10825
  SENSITIVE = [:client_secret]
10613
10826
  include Aws::Structure
10614
10827
  end
@@ -12889,6 +13102,19 @@ module Aws::BedrockAgentCoreControl
12889
13102
  # The client secret for the Microsoft OAuth2 provider.
12890
13103
  # @return [String]
12891
13104
  #
13105
+ # @!attribute [rw] client_secret_config
13106
+ # A reference to the AWS Secrets Manager secret that stores the client
13107
+ # secret. This includes the secret ID and the JSON key used to extract
13108
+ # the client secret value from the secret. Required when
13109
+ # `clientSecretSource` is set to `EXTERNAL`.
13110
+ # @return [Types::SecretReference]
13111
+ #
13112
+ # @!attribute [rw] client_secret_source
13113
+ # The source type of the client secret. Use `MANAGED` if the secret is
13114
+ # managed by the service, or `EXTERNAL` if you manage the secret
13115
+ # yourself in AWS Secrets Manager.
13116
+ # @return [String]
13117
+ #
12892
13118
  # @!attribute [rw] tenant_id
12893
13119
  # The Microsoft Entra ID (formerly Azure AD) tenant ID for your
12894
13120
  # organization. This identifies the specific tenant within
@@ -12900,6 +13126,8 @@ module Aws::BedrockAgentCoreControl
12900
13126
  class MicrosoftOauth2ProviderConfigInput < Struct.new(
12901
13127
  :client_id,
12902
13128
  :client_secret,
13129
+ :client_secret_config,
13130
+ :client_secret_source,
12903
13131
  :tenant_id)
12904
13132
  SENSITIVE = [:client_secret]
12905
13133
  include Aws::Structure
@@ -15051,11 +15279,26 @@ module Aws::BedrockAgentCoreControl
15051
15279
  # The client secret for the Salesforce OAuth2 provider.
15052
15280
  # @return [String]
15053
15281
  #
15282
+ # @!attribute [rw] client_secret_config
15283
+ # A reference to the AWS Secrets Manager secret that stores the client
15284
+ # secret. This includes the secret ID and the JSON key used to extract
15285
+ # the client secret value from the secret. Required when
15286
+ # `clientSecretSource` is set to `EXTERNAL`.
15287
+ # @return [Types::SecretReference]
15288
+ #
15289
+ # @!attribute [rw] client_secret_source
15290
+ # The source type of the client secret. Use `MANAGED` if the secret is
15291
+ # managed by the service, or `EXTERNAL` if you manage the secret
15292
+ # yourself in AWS Secrets Manager.
15293
+ # @return [String]
15294
+ #
15054
15295
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/SalesforceOauth2ProviderConfigInput AWS API Documentation
15055
15296
  #
15056
15297
  class SalesforceOauth2ProviderConfigInput < Struct.new(
15057
15298
  :client_id,
15058
- :client_secret)
15299
+ :client_secret,
15300
+ :client_secret_config,
15301
+ :client_secret_source)
15059
15302
  SENSITIVE = [:client_secret]
15060
15303
  include Aws::Structure
15061
15304
  end
@@ -15149,6 +15392,27 @@ module Aws::BedrockAgentCoreControl
15149
15392
  include Aws::Structure
15150
15393
  end
15151
15394
 
15395
+ # Contains a reference to a secret stored in AWS Secrets Manager.
15396
+ #
15397
+ # @!attribute [rw] secret_id
15398
+ # The ID of the AWS Secrets Manager secret that stores the secret
15399
+ # value.
15400
+ # @return [String]
15401
+ #
15402
+ # @!attribute [rw] json_key
15403
+ # The JSON key used to extract the secret value from the AWS Secrets
15404
+ # Manager secret.
15405
+ # @return [String]
15406
+ #
15407
+ # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/SecretReference AWS API Documentation
15408
+ #
15409
+ class SecretReference < Struct.new(
15410
+ :secret_id,
15411
+ :json_key)
15412
+ SENSITIVE = []
15413
+ include Aws::Structure
15414
+ end
15415
+
15152
15416
  # The Amazon Web Services Secrets Manager location configuration.
15153
15417
  #
15154
15418
  # @!attribute [rw] secret_arn
@@ -15557,11 +15821,26 @@ module Aws::BedrockAgentCoreControl
15557
15821
  # The client secret for the Slack OAuth2 provider.
15558
15822
  # @return [String]
15559
15823
  #
15824
+ # @!attribute [rw] client_secret_config
15825
+ # A reference to the AWS Secrets Manager secret that stores the client
15826
+ # secret. This includes the secret ID and the JSON key used to extract
15827
+ # the client secret value from the secret. Required when
15828
+ # `clientSecretSource` is set to `EXTERNAL`.
15829
+ # @return [Types::SecretReference]
15830
+ #
15831
+ # @!attribute [rw] client_secret_source
15832
+ # The source type of the client secret. Use `MANAGED` if the secret is
15833
+ # managed by the service, or `EXTERNAL` if you manage the secret
15834
+ # yourself in AWS Secrets Manager.
15835
+ # @return [String]
15836
+ #
15560
15837
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/SlackOauth2ProviderConfigInput AWS API Documentation
15561
15838
  #
15562
15839
  class SlackOauth2ProviderConfigInput < Struct.new(
15563
15840
  :client_id,
15564
- :client_secret)
15841
+ :client_secret,
15842
+ :client_secret_config,
15843
+ :client_secret_source)
15565
15844
  SENSITIVE = [:client_secret]
15566
15845
  include Aws::Structure
15567
15846
  end
@@ -15856,10 +16135,37 @@ module Aws::BedrockAgentCoreControl
15856
16135
  # The app secret provided by Privy.
15857
16136
  # @return [String]
15858
16137
  #
16138
+ # @!attribute [rw] app_secret_source
16139
+ # The source type of the app secret. Use `MANAGED` if the secret is
16140
+ # managed by the service, or `EXTERNAL` if you manage the secret
16141
+ # yourself in AWS Secrets Manager.
16142
+ # @return [String]
16143
+ #
16144
+ # @!attribute [rw] app_secret_config
16145
+ # A reference to the AWS Secrets Manager secret that stores the app
16146
+ # secret. This includes the secret ID and the JSON key used to extract
16147
+ # the app secret value from the secret. Required when
16148
+ # `appSecretSource` is set to `EXTERNAL`.
16149
+ # @return [Types::SecretReference]
16150
+ #
15859
16151
  # @!attribute [rw] authorization_private_key
15860
16152
  # The authorization private key for the Stripe Privy integration.
15861
16153
  # @return [String]
15862
16154
  #
16155
+ # @!attribute [rw] authorization_private_key_source
16156
+ # The source type of the authorization private key. Use `MANAGED` if
16157
+ # the secret is managed by the service, or `EXTERNAL` if you manage
16158
+ # the secret yourself in AWS Secrets Manager.
16159
+ # @return [String]
16160
+ #
16161
+ # @!attribute [rw] authorization_private_key_config
16162
+ # A reference to the AWS Secrets Manager secret that stores the
16163
+ # authorization private key. This includes the secret ID and the JSON
16164
+ # key used to extract the authorization private key value from the
16165
+ # secret. Required when `authorizationPrivateKeySource` is set to
16166
+ # `EXTERNAL`.
16167
+ # @return [Types::SecretReference]
16168
+ #
15863
16169
  # @!attribute [rw] authorization_id
15864
16170
  # The authorization ID for the Stripe Privy integration.
15865
16171
  # @return [String]
@@ -15869,7 +16175,11 @@ module Aws::BedrockAgentCoreControl
15869
16175
  class StripePrivyConfigurationInput < Struct.new(
15870
16176
  :app_id,
15871
16177
  :app_secret,
16178
+ :app_secret_source,
16179
+ :app_secret_config,
15872
16180
  :authorization_private_key,
16181
+ :authorization_private_key_source,
16182
+ :authorization_private_key_config,
15873
16183
  :authorization_id)
15874
16184
  SENSITIVE = [:app_secret, :authorization_private_key]
15875
16185
  include Aws::Structure
@@ -15885,10 +16195,32 @@ module Aws::BedrockAgentCoreControl
15885
16195
  # Contains information about a secret in AWS Secrets Manager.
15886
16196
  # @return [Types::Secret]
15887
16197
  #
16198
+ # @!attribute [rw] app_secret_json_key
16199
+ # The JSON key used to extract the app secret value from the AWS
16200
+ # Secrets Manager secret.
16201
+ # @return [String]
16202
+ #
16203
+ # @!attribute [rw] app_secret_source
16204
+ # The source type of the app secret. Either `MANAGED` if the secret is
16205
+ # managed by the service, or `EXTERNAL` if managed by the user in AWS
16206
+ # Secrets Manager.
16207
+ # @return [String]
16208
+ #
15888
16209
  # @!attribute [rw] authorization_private_key_arn
15889
16210
  # Contains information about a secret in AWS Secrets Manager.
15890
16211
  # @return [Types::Secret]
15891
16212
  #
16213
+ # @!attribute [rw] authorization_private_key_json_key
16214
+ # The JSON key used to extract the authorization private key value
16215
+ # from the AWS Secrets Manager secret.
16216
+ # @return [String]
16217
+ #
16218
+ # @!attribute [rw] authorization_private_key_source
16219
+ # The source type of the authorization private key. Either `MANAGED`
16220
+ # if the secret is managed by the service, or `EXTERNAL` if managed by
16221
+ # the user in AWS Secrets Manager.
16222
+ # @return [String]
16223
+ #
15892
16224
  # @!attribute [rw] authorization_id
15893
16225
  # The authorization ID for the Stripe Privy integration.
15894
16226
  # @return [String]
@@ -15898,7 +16230,11 @@ module Aws::BedrockAgentCoreControl
15898
16230
  class StripePrivyConfigurationOutput < Struct.new(
15899
16231
  :app_id,
15900
16232
  :app_secret_arn,
16233
+ :app_secret_json_key,
16234
+ :app_secret_source,
15901
16235
  :authorization_private_key_arn,
16236
+ :authorization_private_key_json_key,
16237
+ :authorization_private_key_source,
15902
16238
  :authorization_id)
15903
16239
  SENSITIVE = []
15904
16240
  include Aws::Structure
@@ -16787,11 +17123,26 @@ module Aws::BedrockAgentCoreControl
16787
17123
  # existing API key and is encrypted and stored securely.
16788
17124
  # @return [String]
16789
17125
  #
17126
+ # @!attribute [rw] api_key_secret_config
17127
+ # A reference to the AWS Secrets Manager secret that stores the API
17128
+ # key. This includes the secret ID and the JSON key used to extract
17129
+ # the API key value from the secret. Required when
17130
+ # `apiKeySecretSource` is set to `EXTERNAL`.
17131
+ # @return [Types::SecretReference]
17132
+ #
17133
+ # @!attribute [rw] api_key_secret_source
17134
+ # The source type of the API key secret. Use `MANAGED` if the secret
17135
+ # is managed by the service, or `EXTERNAL` if you manage the secret
17136
+ # yourself in AWS Secrets Manager.
17137
+ # @return [String]
17138
+ #
16790
17139
  # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/UpdateApiKeyCredentialProviderRequest AWS API Documentation
16791
17140
  #
16792
17141
  class UpdateApiKeyCredentialProviderRequest < Struct.new(
16793
17142
  :name,
16794
- :api_key)
17143
+ :api_key,
17144
+ :api_key_secret_config,
17145
+ :api_key_secret_source)
16795
17146
  SENSITIVE = [:api_key]
16796
17147
  include Aws::Structure
16797
17148
  end
@@ -16801,6 +17152,17 @@ module Aws::BedrockAgentCoreControl
16801
17152
  # Manager.
16802
17153
  # @return [Types::Secret]
16803
17154
  #
17155
+ # @!attribute [rw] api_key_secret_json_key
17156
+ # The JSON key used to extract the API key value from the AWS Secrets
17157
+ # Manager secret.
17158
+ # @return [String]
17159
+ #
17160
+ # @!attribute [rw] api_key_secret_source
17161
+ # The source type of the API key secret. Either `MANAGED` if the
17162
+ # secret is managed by the service, or `EXTERNAL` if managed by the
17163
+ # user in AWS Secrets Manager.
17164
+ # @return [String]
17165
+ #
16804
17166
  # @!attribute [rw] name
16805
17167
  # The name of the API key credential provider.
16806
17168
  # @return [String]
@@ -16821,6 +17183,8 @@ module Aws::BedrockAgentCoreControl
16821
17183
  #
16822
17184
  class UpdateApiKeyCredentialProviderResponse < Struct.new(
16823
17185
  :api_key_secret_arn,
17186
+ :api_key_secret_json_key,
17187
+ :api_key_secret_source,
16824
17188
  :name,
16825
17189
  :credential_provider_arn,
16826
17190
  :created_time,
@@ -17803,6 +18167,17 @@ module Aws::BedrockAgentCoreControl
17803
18167
  # Manager.
17804
18168
  # @return [Types::Secret]
17805
18169
  #
18170
+ # @!attribute [rw] client_secret_json_key
18171
+ # The JSON key used to extract the client secret value from the AWS
18172
+ # Secrets Manager secret.
18173
+ # @return [String]
18174
+ #
18175
+ # @!attribute [rw] client_secret_source
18176
+ # The source type of the client secret. Either `MANAGED` if the secret
18177
+ # is managed by the service, or `EXTERNAL` if managed by the user in
18178
+ # AWS Secrets Manager.
18179
+ # @return [String]
18180
+ #
17806
18181
  # @!attribute [rw] name
17807
18182
  # The name of the OAuth2 credential provider.
17808
18183
  # @return [String]
@@ -17841,6 +18216,8 @@ module Aws::BedrockAgentCoreControl
17841
18216
  #
17842
18217
  class UpdateOauth2CredentialProviderResponse < Struct.new(
17843
18218
  :client_secret_arn,
18219
+ :client_secret_json_key,
18220
+ :client_secret_source,
17844
18221
  :name,
17845
18222
  :credential_provider_vendor,
17846
18223
  :credential_provider_arn,